Denial of Service Vulnerability in ClamAV's AutoIt Module
CVE-2023-20212

7.5HIGH

Key Information:

Vendor: Cisco
Status: Cisco Secure Endpoint
Vendor: CVE Published:; 18 August 2023

Summary

A vulnerability exists in the AutoIt module of ClamAV that may allow unauthenticated remote attackers to trigger a denial of service condition. This flaw is caused by a logic error in memory management, enabling attackers to submit specially crafted AutoIt files for scanning. If successful, the exploit could lead to the ClamAV scanning process restarting unexpectedly, thereby disrupting services.

Affected Version(s)

Cisco Secure Endpoint

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 18, 2023
Vulnerability Reserved
Oct 27, 2022